Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/e5bdc7-eb06-4626-84d7-13da74cd35a4/1/TkJsh9-8xVLceQ_sPtHN56j4huk.mft
File: TkJsh9-8xVLceQ_sPtHN56j4huk.mft (raw, json)
Hash identifier: xhqMxO2dSjk+AExU3yOMiio6PrY91kPcHaAjwiElPtM=
Subject key identifier: 25:81:5B:55:CF:73:38:6C:EA:FF:8E:60:D4:ED:E6:07:35:73:84:20
Authority key identifier: 4E:42:6C:87:DF:BC:C5:52:DC:79:0F:EC:3E:D1:CD:E7:A8:F8:86:E9
Certificate issuer: /CN=4e426c87dfbcc552dc790fec3ed1cde7a8f886e9
Certificate serial: 019D2771F6D69E9E982B8DD7B1416145F478
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TkJsh9-8xVLceQ_sPtHN56j4huk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/e5bdc7-eb06-4626-84d7-13da74cd35a4/1/TkJsh9-8xVLceQ_sPtHN56j4huk.mft
Manifest number: 0BC5
Signing time: Thu 26 Mar 2026 00:01:13 +0000
Manifest this update: Thu 26 Mar 2026 00:01:13 +0000
Manifest next update: Fri 27 Mar 2026 00:01:13 +0000
Files and hashes: 1: TkJsh9-8xVLceQ_sPtHN56j4huk.crl (hash: VNof5MuGwN950mlBmafpZqkewRfp83XGdLG+SkkeUG4=)
2: vDyYxaD_OvQHT43TMjNvoifQbS0.roa (hash: OGyJnll9v3Henpio/RUnMctAX/okbHPj8xqJsYAY++E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/e5bdc7-eb06-4626-84d7-13da74cd35a4/1/TkJsh9-8xVLceQ_sPtHN56j4huk.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/e5bdc7-eb06-4626-84d7-13da74cd35a4/1/TkJsh9-8xVLceQ_sPtHN56j4huk.mft
rsync://rpki.ripe.net/repository/DEFAULT/TkJsh9-8xVLceQ_sPtHN56j4huk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:71:f6:d6:9e:9e:98:2b:8d:d7:b1:41:61:45:f4:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e426c87dfbcc552dc790fec3ed1cde7a8f886e9
Validity
Not Before: Mar 26 00:01:13 2026 GMT
Not After : Mar 27 00:01:13 2026 GMT
Subject: CN=25815b55cf73386ceaff8e60d4ede60735738420
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:61:1f:13:36:45:45:89:12:02:4b:55:80:1a:
58:12:73:3b:4a:ea:82:2d:30:a6:a5:2d:fd:f4:a4:
8c:6d:85:ad:d8:3d:fd:3d:33:d4:1b:3b:42:d8:c1:
64:84:e9:8f:91:4f:cf:96:45:1c:f2:d1:64:ce:3d:
c4:5c:fe:7b:c8:e5:60:86:55:8c:e4:cc:b3:31:6c:
cd:0a:e1:05:e8:09:0a:ce:55:8f:da:b4:ce:c1:9f:
06:e9:5d:9d:da:2a:24:51:e9:58:e4:f2:83:f9:28:
5a:c7:c0:90:2c:85:bc:60:b0:4c:90:a9:13:0c:38:
78:ed:86:0b:e1:59:05:e8:a7:00:d6:f3:dc:a2:1b:
bd:38:38:50:f4:a8:d8:eb:15:47:8c:51:cd:67:43:
d5:98:28:3f:fc:b4:36:82:80:7d:b5:3d:8c:3f:22:
59:08:6b:7c:3f:8a:38:4b:a2:ba:af:70:af:6c:5f:
89:cd:d4:c3:51:b3:d3:79:ee:af:c6:52:72:ea:af:
b4:93:bb:b7:1c:c0:ad:88:6d:14:90:93:d2:be:0e:
9d:11:89:9f:3e:a9:95:f7:df:27:2f:e9:6d:8b:98:
bc:ed:bc:aa:2f:b1:fc:86:bb:68:d5:af:a4:66:08:
db:c8:6e:b0:f1:47:d2:7e:fe:bb:e8:ec:9f:a5:d8:
88:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:81:5B:55:CF:73:38:6C:EA:FF:8E:60:D4:ED:E6:07:35:73:84:20
X509v3 Authority Key Identifier:
keyid:4E:42:6C:87:DF:BC:C5:52:DC:79:0F:EC:3E:D1:CD:E7:A8:F8:86:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TkJsh9-8xVLceQ_sPtHN56j4huk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e5bdc7-eb06-4626-84d7-13da74cd35a4/1/TkJsh9-8xVLceQ_sPtHN56j4huk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e5bdc7-eb06-4626-84d7-13da74cd35a4/1/TkJsh9-8xVLceQ_sPtHN56j4huk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:e8:72:c5:d0:5f:e8:4d:90:9b:8c:03:6a:34:3d:bf:a0:a5:
06:73:5c:13:cd:ad:67:b4:20:73:e8:98:92:be:aa:c0:b6:61:
ef:31:94:7c:8a:97:4a:7b:94:b3:70:24:1c:fb:f9:15:26:52:
5a:4d:b4:86:1c:63:b8:91:e7:e3:91:6f:4c:e3:13:73:49:09:
bf:61:d8:fd:c1:3b:b6:d4:0a:76:ae:c8:64:a7:aa:d6:e8:37:
57:61:fd:4c:41:95:40:8f:d4:14:34:46:d2:a1:4f:44:e7:3a:
eb:1c:7e:2c:5e:23:4e:00:14:9e:15:20:53:d0:95:8a:b1:f0:
27:6a:80:43:76:bc:3d:d6:c9:91:23:53:66:5c:69:75:ce:c6:
39:aa:4d:c7:d2:4a:34:56:66:a5:17:7b:69:06:f8:10:9f:16:
ba:0a:11:f4:e6:0c:2d:39:bf:25:18:fc:90:97:86:1b:8f:40:
59:d4:05:aa:cc:5e:c7:97:76:7b:d0:e8:0d:1e:83:d4:11:62:
8d:9b:e7:70:6d:77:75:71:44:f7:01:35:33:1e:77:a2:bc:ec:
59:c2:7d:90:12:26:69:9e:5f:34:f5:a7:65:ff:41:23:fd:32:
8e:32:18:d5:ca:e9:30:28:1f:54:99:ef:a2:8e:f1:b7:35:a0:
83:a7:c2:4e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ncfbWnp6YK43XsUFhRfR4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlNDI2Yzg3ZGZiY2M1NTJkYzc5MGZlYzNlZDFjZGU3YThm
ODg2ZTkwHhcNMjYwMzI2MDAwMTEzWhcNMjYwMzI3MDAwMTEzWjAzMTEwLwYDVQQD
EygyNTgxNWI1NWNmNzMzODZjZWFmZjhlNjBkNGVkZTYwNzM1NzM4NDIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7WEfEzZFRYkSAktVgBpYEnM7SuqC
LTCmpS399KSMbYWt2D39PTPUGztC2MFkhOmPkU/PlkUc8tFkzj3EXP57yOVghlWM
5MyzMWzNCuEF6AkKzlWP2rTOwZ8G6V2d2iokUelY5PKD+Shax8CQLIW8YLBMkKkT
DDh47YYL4VkF6KcA1vPcohu9ODhQ9KjY6xVHjFHNZ0PVmCg//LQ2goB9tT2MPyJZ
CGt8P4o4S6K6r3CvbF+JzdTDUbPTee6vxlJy6q+0k7u3HMCtiG0UkJPSvg6dEYmf
PqmV998nL+lti5i87byqL7H8hrto1a+kZgjbyG6w8UfSfv676OyfpdiI0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCWBW1XPczhs6v+OYNTt5gc1c4QgMB8GA1UdIwQY
MBaAFE5CbIffvMVS3HkP7D7Rzeeo+IbpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVGtKc2g5LTh4VkxjZVFfc1B0SE41Nmo0aHVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS9lNWJkYzctZWIwNi00NjI2LTg0ZDct
MTNkYTc0Y2QzNWE0LzEvVGtKc2g5LTh4VkxjZVFfc1B0SE41Nmo0aHVrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OS9lNWJkYzctZWIwNi00NjI2LTg0ZDctMTNkYTc0Y2QzNWE0
LzEvVGtKc2g5LTh4VkxjZVFfc1B0SE41Nmo0aHVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH+hyxdBf
6E2Qm4wDajQ9v6ClBnNcE82tZ7Qgc+iYkr6qwLZh7zGUfIqXSnuUs3AkHPv5FSZS
Wk20hhxjuJHn45FvTOMTc0kJv2HY/cE7ttQKdq7IZKeq1ug3V2H9TEGVQI/UFDRG
0qFPROc66xx+LF4jTgAUnhUgU9CVirHwJ2qAQ3a8PdbJkSNTZlxpdc7GOapNx9JK
NFZmpRd7aQb4EJ8WugoR9OYMLTm/JRj8kJeGG49AWdQFqsxex5d2e9DoDR6D1BFi
jZvncG13dXFE9wE1Mx53orzsWcJ9kBImaZ5fNPWnZf9BI/0yjjIY1crpMCgfVJnv
oo7xtzWgg6fCTg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 08:29:06 2026 by rpki-client